Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:37 a.m.7 views

CVE-2023-28630

GoCD is an open source continuous delivery server. In GoCD versions from 20.5.0 and below 23.1.0, if the server environment is not correctly configured by administrators to provide access to the relevant PostgreSQL or MySQL backup tools, the credentials for database access may be unintentionally...

4.4CVSS7AI score0.00254EPSS
Exploits0References1
Circl
Circl
added 2023/03/28 12:38 a.m.6 views

CVE-2023-28630

creationtimestamp| type| source ---|---|--- 2023-03-28 00:38:16+00:00| seen| https://t.me/cibsecurity/60838...

4.4CVSS4.6AI score0.00254EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/27 8:33 p.m.9 views

CVE-2023-28630 Sensitive information disclosure possible on misconfigured failed backups of non-H2 databases in gocd

GoCD is an open source continuous delivery server. In GoCD versions from 20.5.0 and below 23.1.0, if the server environment is not correctly configured by administrators to provide access to the relevant PostgreSQL or MySQL backup tools, the credentials for database access may be unintentionally...

4.2CVSS4.8AI score0.00254EPSS
Exploits0References4
OSV
OSV
added 2023/03/27 8:33 p.m.26 views

CVE-2023-28630 Sensitive information disclosure possible on misconfigured failed backups of non-H2 databases in gocd

GoCD is an open source continuous delivery server. In GoCD versions from 20.5.0 and below 23.1.0, if the server environment is not correctly configured by administrators to provide access to the relevant PostgreSQL or MySQL backup tools, the credentials for database access may be unintentionally...

4.2CVSS5AI score0.00254EPSS
Exploits0References6
CVE
CVE
added 2023/03/27 8:33 p.m.49 views

CVE-2023-28630

CVE-2023-28630 affects GoCD versions 20.5.0 through 23.1.0. When backups are enabled but the server cannot access the required backup binaries (pg_dump for PostgreSQL or mysqldump for MySQL), a failure to launch the backup utility can leak the plaintext database password in admin alerts. The flaw...

4.4CVSS4.6AI score0.00254EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2023/03/27 8:33 p.m.39 views

CVE-2023-28630 Sensitive information disclosure possible on misconfigured failed backups of non-H2 databases in gocd

GoCD is an open source continuous delivery server. In GoCD versions from 20.5.0 and below 23.1.0, if the server environment is not correctly configured by administrators to provide access to the relevant PostgreSQL or MySQL backup tools, the credentials for database access may be unintentionally...

4.2CVSS5.1AI score0.00254EPSS
Exploits0References4
Rows per page
Query Builder